If you are a WatchGuard Partner, your Threat Detection and Response account is automatically a Service Provider account. As a Service Provider, you create and manage separate TDR accounts for multiple subscribers. From your Service Provider account, you manage the Threat Detection and Response subscription service for multiple managed subscriber accounts.
For each managed subscriber account, a Service Provider can:
- Activate, allocate, and renew Host Sensor licenses
- Monitor deployed Fireboxes and Host Sensors
- Configure Threat Detection and Response policies
- Take threat mediation actions
TDR roles are managed in the WatchGuard Portal.
- For information about WatchGuard Cloud Operator roles, see About Operators
- To manage user accounts, including Operator roles, see Manage User Accounts in the WatchGuard Portal
The actions available to each user in a Service Provider account are based on the Operator role. For more information, see TDR Operator Roles and Permissions.
Threat Detection and Response is a multi-tenant, multi-tier system. Each Service Provider account can manage many customer accounts. Each managed customer account has a separate UUID that uniquely identifies the account. The Service Provider deploys Host Sensors and Fireboxes, and manages policies, actions, and reports separately for each managed account. Data is not shared between managed accounts.
For more information about Service Providers in WatchGuard Cloud, see WatchGuard Cloud for Service Providers.
As a Service Provider, you create managed accounts for each of your customers in your TDR Service Provider account. For information about how to add managed customer accounts, see Add a Managed Account.
After you create a managed customer account, you can assign Host Sensors to each account. For more information, see Manage TDR Host Sensor Licenses.